Basic Development Rules
D1 – Use APIs, rather than rewriting methods, whenever possible
尽可能的使用API ,以避免重复编码
D2 – Coding and storing PINs and Keys in primitive arrays must be avoided
为确保智能卡的安全不受损害,PIN和Key的编码、存储一定不可以放在基本数组里。
D3 - Sensitive data must be initialized at the beginning and clears at the end of the session
敏感数据在会话开始时要初始化,会话结束时要清除。平台支持时,尽量使用平台方法
D4 – Sensitive data must be stored in transient data
将